CompTIA CASP+ (CAS-003) — Question 71

One of the objectives of a bank is to instill a security awareness culture. Which of the following are techniques that could help to achieve this? (Choose two.)

Answer options

• A. Blue teaming
• B. Phishing simulations
• C. Lunch-and-learn
• D. Random audits
• E. Continuous monitoring
• F. Separation of duties

Correct answer: B, E

Explanation

Phishing simulations (B) help educate employees on recognizing phishing attacks, while continuous monitoring (E) ensures ongoing vigilance against security threats. Blue teaming (A), lunch-and-learn (C), random audits (D), and separation of duties (F) are valuable practices, but they do not directly contribute to fostering a widespread security awareness culture.